FreeCalypso > hg > fc-pcsc-tools
comparison doc/GrcardSIM2-security-model @ 195:810ea92d9f47
doc/GrcardSIM2-security-model: grammar fix
| author | Mychaela Falconia <falcon@freecalypso.org> |
|---|---|
| date | Sun, 07 Mar 2021 01:55:29 +0000 |
| parents | edaccdbac95b |
| children |
comparison
equal
deleted
inserted
replaced
| 194:a5fee308b699 | 195:810ea92d9f47 |
|---|---|
| 17 * You can change the ADM11 secret code itself; | 17 * You can change the ADM11 secret code itself; |
| 18 * You can reset PIN1, PIN2, PUK1, PUK2 and ADM5 to new codes without having to | 18 * You can reset PIN1, PIN2, PUK1, PUK2 and ADM5 to new codes without having to |
| 19 know any previous ones. | 19 know any previous ones. |
| 20 | 20 |
| 21 Most admin-write-only files are writable after either ADM5 or ADM11 | 21 Most admin-write-only files are writable after either ADM5 or ADM11 |
| 22 authentication, but some files (particular EF.WEKI that holds Ki) can only be | 22 authentication, but some files (particularly EF.WEKI that holds Ki) can only be |
| 23 read and written with ADM11. More precisely, if a given access condition | 23 read and written with ADM11. More precisely, if a given access condition |
| 24 (returned in response to SELECT) is listed as ADM11, then you need to | 24 (returned in response to SELECT) is listed as ADM11, then you need to |
| 25 authenticate with ADM11, but if it is listed as ADM5, then either ADM5 or ADM11 | 25 authenticate with ADM11, but if it is listed as ADM5, then either ADM5 or ADM11 |
| 26 is acceptable. Because of this permissive design whereby ADM11 alone is | 26 is acceptable. Because of this permissive design whereby ADM11 alone is |
| 27 sufficient, one can typically ignore ADM5 altogether for programming purposes. | 27 sufficient, one can typically ignore ADM5 altogether for programming purposes. |